Skip to content

runtastic/ansible-iam

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits

collections

collections

 
 

example_vars

example_vars

 
 

groups

groups

 
 

identities/peter.quill

identities/peter.quill

 
 

library

library

 
 

roles

roles

 
 

.editorconfig

.editorconfig

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

aws_manage_groups.yml

aws_manage_groups.yml

 
 

aws_manage_users.yml

aws_manage_users.yml

 
 

azure_manage_groups.yml

azure_manage_groups.yml

 
 

azure_manage_users.yml

azure_manage_users.yml

 
 

contentful-example.json

contentful-example.json

 
 

contentful_manage_users.yml

contentful_manage_users.yml

 
 

github_manage_users.yml

github_manage_users.yml

 
 

google_manage_groups.yml

google_manage_groups.yml

 
 

google_manage_users.yml

google_manage_users.yml

 
 

miro_manage_users.yml

miro_manage_users.yml

 
 

slack_manage_users.yml

slack_manage_users.yml

 
 

Repository files navigation

Identity Access Management with Ansible

This repository contains roles and playbooks to use Ansible for Identity Access Management.

We recommend using Ansible Automation Controller / Ansible Tower or AWX to get the most out of this solution.

Currently implemented:

Examples

Performing a local run of roles.

AWS

# aws_manage_users.yml
ansible-playbook -i localhost, -c local ./aws_manage_users.yml -e @./example_vars/aws.json \
-e "aws_api_url=https://scim.eu-central-1.amazonaws.com/<ID>/scim/v2/ aws_api_token=<AWS_API_TOKEN>"

# aws_manage_groups.yml
ansible-playbook -i localhost, -c local ./aws_manage_groups.yml -e @./example_vars/aws.json \
-e "aws_api_url=https://scim.eu-central-1.amazonaws.com/<ID>/scim/v2/ aws_api_token=<AWS_API_TOKEN>"

Azure

# azure_manage_users.yml
ansible-playbook -i localhost, -c local ./azure_manage_users.yml -e @./example_vars/azure.json \
-e "azure_client_id=<AZURE_CLIENT_ID> azure_client_secret=<AZURE_CLIENT_SECRET> azure_tenant_id=<AZURE_TENANT_ID>"

# azure_manage_groups.yml
ansible-playbook -i localhost, -c local ./azure_manage_groups.yml -e @./example_vars/azure.json \
-e "azure_client_id=<AZURE_CLIENT_ID> azure_client_secret=<AZURE_CLIENT_SECRET> azure_tenant_id=<AZURE_TENANT_ID>"

Contentful

# contentful_manage_users.yml
ansible-playbook -i localhost, -c local ./contentful_manage_users.yml -e @./contentful-example.json \
-e "contentful_base_url=https://api.contentful.com contentful_access_token=<CONTENTFUL_ACCESS_TOKEN> contentful_org_id=<CONTENTFUL_ORG_ID>"

GitHub

# github_manage_users.yml
ansible-playbook -i localhost, -c local ./github_manage_users.yml -e @./example_vars/github.json \
-e "github_api_url=https://api.github.com github_api_org=<GITHUB_ORG> github_api_token=<GITHUB_API_TOKEN>"

Google Workspace

# google_manage_users.yml
ansible-playbook -i localhost, -c local ./google_manage_users.yml -e @./example_vars/google.json \
-e "google_subject=automation@guardians.com google_private_key=<GOOGLE_API_PRIVATE_KEY>"

# google_manage_groups.yml
ansible-playbook -i localhost, -c local ./google_manage_groups.yml -e @./example_vars/google.json \
-e "google_subject=automation@guardians.com google_private_key=<GOOGLE_API_PRIVATE_KEY>"

Miro

# miro_manage_users.yml
ansible-playbook -i localhost, -c local ./miro_manage_users.yml -e @./example_vars/miro.json \
-e "miro_api_token=<MIRO_API_TOKEN>"

Slack

# slack_manage_users.yml
ansible-playbook -i localhost, -c local ./slack_manage_users.yml -e @./example_vars/slack.json \
-e "slack_api_token=<SLACK_API_TOKEN>"

About

Automating Identity Access Management with Ansible

Topics

ansible automation iam user-management

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

14 stars

Watchers

13 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages